Extracted

• • Target

    fd88e7cd053b2f29430a5b91c354ac1e185918f53aeadcea9b00080ba91c0029N.exe

  • Size

    55KB

  • MD5

    b1cdc5e00943a176750e7048ce35c340

  • SHA1

    1a5e532fc66f11fcb662104e49dec57a89a35e62

  • SHA256

    fd88e7cd053b2f29430a5b91c354ac1e185918f53aeadcea9b00080ba91c0029

  • SHA512

    baf0221f1b8f5e727e2d4dfaf92cfc236bcb826b94c4cac7ed76d5336592b21c8fa3cb8aa20e23a2466db588bad7be36bec8069223c2559f78529f150b61a063

  • SSDEEP

    1536:ZBGKWpKJGDAe7cvF2ZKNSoNSd0A3shxD6T:nXkPGFOKNXNW0A8hho

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2